Apply now »

Architect, IAM

City:  Warsaw
Country/Region:  PL
Application Deadline:  2025

PANDORA’s Digital & Technology Hub in Warsaw is a key part of the world’s largest jewellery brand, supporting millions of people in expressing their emotions through meaningful jewellery. As one of our fast-growing global locations, the Warsaw Hub plays a vital role in driving digital innovation, delivering scalable technology solutions and supporting our global transformation journey. Our teams work closely with colleagues across the globe, including our headquarters in Copenhagen, to shape the future of digital in retail and e-commerce.

We’re proud of our inclusive, people-first culture, guided by our values: We Care, We Dream, We Dare, We Deliver. If you are an experienced IAM Architect looking for a new professional challenge in a dynamic and inspiring environment where technology meets creativity and where your work truly makes an impact, join our Digital Workplace team, driving the evolution of our global digital workplace. 


Role Summary

We are seeking a Senior IAM Architect to lead the evolution of our Identity and Access Management (IAM) landscape. This role will define and implement standards for user provisioning, identity creation, and authentication strategies across a diverse application ecosystem - from legacy store POS systems to modern travel and expense platforms. The IAM Architect will play a pivotal role in enhancing the onboarding experience and day-to-day authentication journeys for all users.


Key Responsibilities

  • Define and maintain IAM architecture standards, with a focus on scalable and secure user provisioning and identity lifecycle management.
  • Lead the design and implementation of authentication strategies using SailPoint Identity Now, Microsoft Entra ID (Azure AD), and on-prem Active Directory.
  • Collaborate with business and IT stakeholders to ensure IAM solutions support both legacy and modern applications.
  • Drive improvements in onboarding processes to ensure seamless Day 1 access and a frictionless user experience.
  • Establish governance frameworks and best practices for identity creation, access control, and compliance.
  • Evaluate and recommend enhancements to IAM tools and integrations to support business agility and security.
  • Provide technical leadership and mentorship to IAM developers  and operations teams.
  • Monitor and optimize authentication flows to improve performance, security, and user satisfaction.


Qualifications

  • Proven experience in IAM architecture and implementation in complex enterprise environments
  • Deep expertise in SailPoint IdentityNow, Microsoft Entra ID (Azure AD), and Active Directory (on-prem)
  • Strong understanding of identity lifecycle processes (Joiner, Mover, Leaver), RBAC, and authentication protocols (SAML, OAuth, OpenID Connect)
  • Experience supporting a broad application landscape, including legacy systems and SaaS platforms  
  • Demonstrated ability to improve user onboarding and authentication experiences
  • Excellent communication and stakeholder engagement skills

Preferred Certifications

  • Certifications such as CISSP, Microsoft Certified: Identity and Access Administrator Associate, or SailPoint Certified Identity Security Engineer
  • Experience with CI/CD pipelines and DevSecOps practices.
  • Familiarity with compliance frameworks (e.g., GDPR, ISO 27001)


Our Offer

  • Stable employment on the basis of an employment contract with a basic salary and a achievable annual bonus 
  • Hybrid work model (our office is located at Domaniewska 29, with free employee parking available upon prior reservation)
  • Attractive discounts on Pandora products
  • Flexible working hours (start 7am-10am, finish 3pm-6pm)
  • Support for professional competence development (including knowledge sharing, professional training)
  • PREMIUM package of MEDICOVER medical care with dental care
  • Generali Life Insurance
  • Sports membership card
  • Benefits available in cafeteria program on the MyBenefit platform
  • Additional days off e.g. for birthdays, health check
  • Subsidy for your home office equipment
  • Employee Pension Plans (PPE)
  • Additional benefits under the company's social fund (e.g., holiday or kindergarten subsidies)
  • Employee Referral Program 

Apply now »